Posts: 952
Threads: 111
Joined: Apr 2014
Reputation:
882
12-14-2016, 02:20 PM
(This post was last modified: 12-14-2016, 04:26 PM by 1van.
Edit Reason: youtube poc
)
PLC Injector
Modbus stager in assembly and some scripts to upload/download data to the holding register of a PLC.
https://github.com/BorjaMerino/PlcInjector
https://www.youtube.com/watch?v=hJ0HiR8uIWg
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
Posts: 952
Threads: 111
Joined: Apr 2014
Reputation:
882
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
Posts: 1.244
Threads: 10
Joined: Apr 2015
Reputation:
509
Modbus je trivijalan protokol. Sve moze da se odradi i preko hyperterm-inala. Za koji PLC je ovo vezano?
Posts: 952
Threads: 111
Joined: Apr 2014
Reputation:
882
Koliko vidim nije objavljena tacna verzija ali iz slika moze da se vidi "schneider electric ...".
Modbus je mozda trivijalan protokol ali je svakako i jako zastupljen.
Internet + Trivijaln protokol = Katastrofa
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
Posts: 1.244
Threads: 10
Joined: Apr 2015
Reputation:
509
Scheider PLC-ove nisam nikada smatrao za ozbiljne. Svi PLC-ovi podrzavaju Modbus, ali za razmenu podataka sa senzora i izvrsnim organima. Za visi nivo se koriste iskljucivo profibus i profinet. Bas me takodje interesure i koja fabrika ima izlaz ka internetu sa strane pogona. Ja nisam cuo. Ovo je vise za igranje varijanta.
Posts: 952
Threads: 111
Joined: Apr 2014
Reputation:
882
Koristeci alate poput
https://nmap.org/ ili
https://github.com/robertdavidgraham/masscan mozes jako brzo da nadjes fabrike koje imaju izlaz ka internetu. A ako te mrzi da skeniras mozes i da koristis ovaj servis:
https://www.shodan.io/search?query=modbus
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
